New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add CVE-2012-3951 Scrutinizer NetFlow and sFlow Analyzer exploit #671

Merged

wchen-r7 merged 3 commits into rapid7:master from wchen-r7:scrutinizer_upload

Aug 7, 2012

Commits on Aug 7, 2012

Add CVE-2012-3951 Scrutinizer NetFlow and sFlow Analyzer exploit
```
This uses a default MySQL admin credential to write a php file to
the web directory, extracts our malicious executable, and then
finally execute it. We get SYSTEM.
```
sinn3r committed Aug 7, 2012
Configuration menu
View commit details

Copy full SHA for 6b4ae94

Browse repository at this point
Copy the full SHA

6b4ae94 View commit details

Browse the repository at this point in the history
Fix check() function

sinn3r committed Aug 7, 2012
Configuration menu
View commit details

Copy full SHA for 3ba73c4

Browse repository at this point
Copy the full SHA

3ba73c4 View commit details

Browse the repository at this point in the history
I tested it 9.5.2 too

sinn3r committed Aug 7, 2012
Configuration menu
View commit details

Copy full SHA for 5f4297a

Browse repository at this point
Copy the full SHA

5f4297a View commit details

Browse the repository at this point in the history